diff options
| author | Daniil Baturin <daniil@vyos.io> | 2025-06-12 15:20:21 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2025-06-12 15:20:21 +0100 |
| commit | dcba87b2394b789c335b44856a8ae7bfea05353c (patch) | |
| tree | 3789462504fe665ff59490527d10f5d0fd625b21 /python | |
| parent | 71f4f8c55ae660ae39113981a44bd1cd7ef77394 (diff) | |
| parent | 05d71332442b244f488792000bf93c96f12c9b46 (diff) | |
| download | vyos-1x-dcba87b2394b789c335b44856a8ae7bfea05353c.tar.gz vyos-1x-dcba87b2394b789c335b44856a8ae7bfea05353c.zip | |
Merge pull request #4497 from yzguy/T7432
T7432: RPKI VRF Support
Diffstat (limited to 'python')
| -rw-r--r-- | python/vyos/frrender.py | 17 |
1 files changed, 16 insertions, 1 deletions
diff --git a/python/vyos/frrender.py b/python/vyos/frrender.py index 73d6dd5f0..d9e409cb4 100644 --- a/python/vyos/frrender.py +++ b/python/vyos/frrender.py @@ -543,6 +543,21 @@ def get_frrender_dict(conf, argv=None) -> dict: elif conf.exists_effective(ospfv3_vrf_path): vrf['name'][vrf_name]['protocols'].update({'ospfv3' : {'deleted' : ''}}) + # We need to check the CLI if the RPKI node is present and thus load in all the default + # values present on the CLI - that's why we have if conf.exists() + rpki_vrf_path = ['vrf', 'name', vrf_name, 'protocols', 'rpki'] + if 'rpki' in vrf_config.get('protocols', []): + rpki = conf.get_config_dict(rpki_vrf_path, key_mangling=('-', '_'), get_first_key=True, + with_pki=True, with_recursive_defaults=True) + rpki_ssh_key_base = '/run/frr/id_rpki' + for cache, cache_config in rpki.get('cache',{}).items(): + if 'ssh' in cache_config: + cache_config['ssh']['public_key_file'] = f'{rpki_ssh_key_base}_{cache}.pub' + cache_config['ssh']['private_key_file'] = f'{rpki_ssh_key_base}_{cache}' + vrf['name'][vrf_name]['protocols'].update({'rpki' : rpki}) + elif conf.exists_effective(rpki_vrf_path): + vrf['name'][vrf_name]['protocols'].update({'rpki' : {'deleted' : ''}}) + # We need to check the CLI if the static node is present and thus load in all the default # values present on the CLI - that's why we have if conf.exists() static_vrf_path = ['vrf', 'name', vrf_name, 'protocols', 'static'] @@ -675,7 +690,7 @@ class FRRender: output += render_to_string('frr/ripngd.frr.j2', config_dict['ripng']) output += '\n' if 'rpki' in config_dict and 'deleted' not in config_dict['rpki']: - output += render_to_string('frr/rpki.frr.j2', config_dict['rpki']) + output += render_to_string('frr/rpki.frr.j2', {'rpki': config_dict['rpki']}) output += '\n' if 'segment_routing' in config_dict and 'deleted' not in config_dict['segment_routing']: output += render_to_string('frr/zebra.segment_routing.frr.j2', config_dict['segment_routing']) |